all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Should SOC monitor WAF alerts?

Add to bookmarks
March 28, 2024, 4:38 p.m. | /u/Aleduc_

cybersecurity www.reddit.com

Hi all,

My management has decided that the SOC (me) should monitor WAF alerts in our SIEM (?). I just don't see the point or what can be done:

\- either the traffic has been blocked by the WAF and then no action is required

\- either the traffic went through, and if it is illegitimate, that means the WAF needs improvement, so then no monitoring action to take

Am I missing something?

action alerts blocked can cybersecurity don management monitor point siem soc traffic waf

Visit resource

More from www.reddit.com / cybersecurity

Got a job as a Information Security Engineer; any book recs? 5 hours ago | www.reddit.com
book books ccsp certification +13
Penetration testing report 7 hours ago | www.reddit.com
app cybersecurity penetration penetration testing +2
UCF wins the National Collegiate Cyber Defense Competition 7 hours ago | www.reddit.com
competition cyber cyber defense cybersecurity +4
How much knowledge do you guys know about the industry that you work in? 13 hours ago | www.reddit.com
banking cybersecurity etc gas +8
Cisco reveals zero-day attacks used by hackers to attack government networks in major threat campaign 14 hours ago | www.reddit.com
attack attacks campaign cisco +7
Any Fortune 100 company go all in on Microsoft E5 Security Suite? 1 day ago | www.reddit.com
all in cybersecurity defender defenders +12
Blueteam Certification like cybersecurity engineers 1 day, 2 hours ago | www.reddit.com
architect blueteam certification certifications +12
Fake job interviews target developers with new Python backdoor 1 day, 5 hours ago | www.reddit.com
backdoor cybersecurity developers fake +7
Passkeys: A Shattered Dream 1 day, 5 hours ago | www.reddit.com
cybersecurity dream passkeys

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Application Security Engineer - Enterprise Engineering

@ Meta | Bellevue, WA | Seattle, WA | New York City | Fremont, CA
View on infosec-jobs.com

Security Engineer

@ Retool | San Francisco, CA
View on infosec-jobs.com

Senior Product Security Analyst

@ Boeing | USA - Seattle, WA
View on infosec-jobs.com

Junior Governance, Risk and Compliance (GRC) and Operations Support Analyst

@ McKenzie Intelligence Services | United Kingdom - Remote
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com
View more jobs